Attend this workshop to help assess your current information security program. We will review information security risk fundamentals and discuss the process of establishing risk tolerance at your institution. We will then cover some approaches to determine your current level of program maturity using common information security frameworks such as CobiT, NIST, PCI, and ISO27001.
During the workshop, you will be asked to work on two activities to assess your program and kick-start your program evaluation. Finally, we will attempt to prioritize your activities by combining maturity gap analysis and risk scores. The final outcome is to establish your institution’s strategic direction.